Discussion

• @senator77billy @senator77billy on x

  I was impacted via increased cost for my oral chemo meds, they finally said blamed on the attack as they fix systems. Now I fight them both & my info hack. I dug that info out a single person after many weeks of calls getting different stories on cost changes. Tired

• @malwarejake Jake Williams on x

  I'll bet just about any amount we'll know within a year it was more than “maybe a third.” I hope they charge this clown with perjury. He knows better.

• @aapatel09 Ankur A. Patel on x

  @lorenzofb @LouisColumbus This raises a serious question about cybersecurity standards in healthcare. Shouldn't they mandate multi-factor authentication to protect sensitive information?

• @wbm312 Whitney Merrill on x

  And no one has been notified that they're affected. Comms have gone out to individuals/companies using a provider that uses Change Healthcare that there's an incident going on. But individuals do not know if and what of their data has been breached.

• @harlemedic @harlemedic on x

  Brings to mind Charleton Heston's line at the end of Planet of the Apes. “You Maniacs! You blew it up! Ah, damn you! God damn you all to hell!”

• @arryinseattle @arryinseattle on x

  Reason why my heath data should be MINE, not in the hands of cyber incompetent big Pharma and the tech dinosaurs of sickcare.

• @wbm312 Whitney Merrill on x

  HIPAA is out of date and needs a massive overhaul for privacy and security. This is unacceptable.

• @infinitedly Trish on x

  Yeah, this is kind of a big deal. 🤦🏻‍♀️

• @ronwyden Ron Wyden on x

  .@UnitedHealthGrp's failure to implement bare minimum cybersecurity standards has left patients and providers in the lurch. UHG touches 152 MILLION individuals nationwide. That means nearly one-third of Americans could be impacted by this corporate negligence.

• @ronwyden Ron Wyden on x

  The @UnitedHealthGrp cyber attack is the poster child for why it's so important for massive corporations to abide by bare minimum cybersecurity standards. I'll be pushing Congress and federal agencies to implement *and enforce* new cybersecurity requirements to protect patients.

• @ericgeller Eric Geller on x

  Witty: “Cyber criminals entered a Change Healthcare portal, exfiltrated data, and on February the 21st deployed ransomware. The portal they accessed was not protected by multi-factor authentication.”

• @ericgeller Eric Geller on x

  Witty: “The decision to pay a ransom was mine. This was one of the hardest decisions I've ever had to make, and I wouldn't wish it on anyone.”

• @ericgeller Eric Geller on x

  Wyden: Will you commit to requiring MFA company-wide within six months? Witty: “Yes, I'm happy to commit to that. In fact, I can confirm to you that, as of today, across the whole of UHG, all of our external-facing systems have got multi-factor authentication enabled.”

• @unitedhealthgrp @unitedhealthgrp on x

  Change Healthcare update: [image]

• @ericgeller Eric Geller on x

  Andrew Witty is delivering his opening statement now. “As a result of this malicious cyberattack, patients and providers have experienced disruptions, and people are worried about their private health data To all those impacted, let me be very clear: I'm deeply, deeply sorry.”

• @jessiehellmann Jessie Hellmann on x

  UnitedHealth Group CEO Andrew Witty tells the Senate Finance Committee this morning the decision to pay a ransom was his. “This was one of the hardest decisions I've ever had to make and I wouldn't wish it on anyone,” he said.

• @lorenzofb Lorenzo Franceschi-Bicchierai on x

  Great moment in today's Senate hearing on the UnitedHealth Group's recent cyberattack. Senator Thom Tillis takes out the “Cybersecurity for Dummies” book, not sure exactly why... [image]

• @lorenzofb Lorenzo Franceschi-Bicchierai on x

  NEW: UnitedHealth CEO told Senators that the company has now enabled multi-factor authentication on “all of our external facing systems.” The cyberattack against United's subsidiary Change Healthcare was caused by a server that did not have MFA enabled. https://techcrunch.com/...

• @jburcum @jburcum on x

  Senate hearing on UnitedHealth/Change hack has focused on security, such as lack of multifactor authentication. Another key point: providers still are struggling financially —delayed payment, staff OT to deal with claims processing - despite United's current assistance.

• @senmarkey Ed Markey on x

  As American health care prices skyrocket, UnitedHealth's CEO makes millions despite an antitrust investigation by DOJ and system-disrupting cyberattack. Now, they want to buy Steward's physician group. We need guaranteed protections for patients & providers—not corporate greed.

• @mmcauliff Michael McAuliff on x

  UnitedHealth's CEO took a low-key beating today from senators, who were not impreses that Change Healthcare got hacked because it didn't do 2-factor authentication https://www.modernhealthcare.com/ ... via @modrnhealthcr

• @brittanytrang Brittany Trang on x

  Senators were not happy with UnitedHealth CEO Andrew Witty at today's Senate hearing. “'Is the dominant role of United too dominant?' Because it's into everything, and messing up United messes up everybody.” He faces the House next this afternoon. https://www.statnews.com/...

• @cathymcmorris CathyMcMorrisRodgers on x

  UnitedHealth failed to protect the American people's sensitive health information. At today's @HouseCommerce oversight hearing with the UnitedHealth CEO, we expect to get a comprehensive update on what happened, why it happened, and what they're doing to fix this problem. [video]

• @a_greenberg Andy Greenberg on x

  Change Healthcare hadn't confirmed the size of its ransom payment, but the CEO of its parent company UnitedHealth just told a senate hearing it was $22 million. That's the number we reported back in March. The blockchain doesn't lie. Updated this story: https://www.wired.com/...